• Home
  • Analysis
  • Security Breach in Ledger Connect Kit: Hacker Steals $484K, Company Releases Version 1.1.8
Security Breach in Ledger Connect Kit: Hacker Steals $484K, Company Releases Version 1.1.8

Security Breach in Ledger Connect Kit: Hacker Steals $484K, Company Releases Version 1.1.8

By Benito Cormi Dec 14, 202374Views
Analysis ,Projects ,Regulations ,Scams ,Security ,Technology ,Wallet

Ledger’s Response to $484K Hack

Ledger has responded to a hack in which an unknown attacker compromised its Connectkit Library and stole $484,000 from wallets, according to onchain intelligence firm Lookonchain. The attack was the result of a phishing attack on a former Ledger employee’s NPMJS account. The attacker then uploaded a malicious bug to the Ledger Connectkit Library, which manipulated the Walletconnect project to redirect funds to the attacker’s wallet. Ledger’s technology and security teams quickly deployed a solution, but the malicious file was active for about five hours. Ledger has collaborated with Walletconnect to disable the rogue project and has released a verified version of the Ledger Connect Kit.

The Timeline of the Breach

The security breach began with a phishing attack on the NPMJS account of a former Ledger employee. The attacker used this access to release a compromised version of the Ledger Connect Kit, which contained a malicious bug targeting the Walletconnect project. The bug allowed the attacker to redirect funds to their own wallet. Once alerted to the issue, Ledger’s technology and security teams acted swiftly to deploy a solution. However, the malicious file remained active for approximately five hours.

Funds Stolen and Response Measures

An onchain analysis platform, Lookonchain, reported that $484,000 was stolen from wallets as a result of the hack. Ledger has not confirmed this figure but did disclose the wallet address associated with the attack. Tether has frozen the attacker’s address, which currently holds $254,000. Ledger is actively working with affected customers and law enforcement to track down the attacker. The company is also analyzing the exploit to enhance security and prevent future attacks. Ledger emphasizes the importance of Clear Signing and suggests using additional security measures, such as an additional Ledger mint wallet or manual transaction parsing for blind signing.

Hot Take: Ledger Faces Security Breach and Swiftly Responds

Ledger, the hardware wallet manufacturer, recently experienced a security breach that resulted in the theft of $484,000 from users’ wallets. The incident was a result of a phishing attack targeting a former employee’s account. The attacker successfully uploaded a malicious bug to the Ledger Connectkit Library, enabling them to redirect funds to their own wallet. Despite the breach, Ledger’s technology and security teams swiftly deployed a solution within 40 minutes of becoming aware of the issue. They collaborated with Walletconnect to disable the rogue project and have released a verified version of the Ledger Connect Kit. Ledger is actively working to mitigate the consequences of the attack and prevent future incidents.

Read Disclaimer
This content is aimed at sharing knowledge, it's not a direct proposal to transact, nor a prompt to engage in offers. Lolacoin.org doesn't provide expert advice regarding finance, tax, or legal matters. Caveat emptor applies when you utilize any products, services, or materials described in this post. In every interpretation of the law, either directly or by virtue of any negligence, neither our team nor the poster bears responsibility for any detriment or loss resulting. Dive into the details on Critical Disclaimers and Risk Disclosures.

Share it

Tags:
Benito Cormi
Benito Cormi
Benito Cormi, the brilliant crypto analyst who has made waves in the world of cryptocurrency. With his razor-sharp analytical skills and deep understanding of the digital asset landscape, Benito has become a trusted figure in the industry and remains at the forefront, tirelessly researching and analyzing market trends to help individuals and businesses make informed decisions in this dynamic landscape.
Positive Outlook for UAE in the Crypto Industry amidst Possible Regulatory Changes in the US
Previous Post
December 14, 2023
Positive Outlook for UAE in the Crypto Industry amidst Possible Regulatory Changes in the US
Next Post
December 14, 2023
Bitcoin Surges Above $43,000 as Robust US Retail Sales Data Triggers Temporary Price Decline – Here’s the Potential for BTC to Reach New Annual Peaks
Bitcoin Surges Above $43,000 as Robust US Retail Sales Data Triggers Temporary Price Decline – Here's the Potential for BTC to Reach New Annual Peaks

Popular Crypto News Today

Crypto Czar Role May Be Filled by Chris Giancarlo Soon 🚀💰

Crypto Czar Role May Be Filled by Chris Giancarlo Soon 🚀💰

ByByBitro ConwellNov 23, 2024665 min read
Powerful Rally Strategies for Shiba Inu Token Are Discussed 🚀🐾

Powerful Rally Strategies for Shiba Inu Token Are Discussed 🚀🐾

ByByNewt BettecNov 23, 2024635 min read
Powerful Endorsement of Bitcoin by Allianz with 25% Stake 😊📈

Powerful Endorsement of Bitcoin by Allianz with 25% Stake 😊📈

ByByBitro ConwellNov 23, 2024615 min read
Groundbreaking Nomination of Scott Bessent by Trump on Crypto 🚀💰

Groundbreaking Nomination of Scott Bessent by Trump on Crypto 🚀💰

ByByWyatt NewsonNov 23, 2024604 min read
Stunning 30k Profit Achieved with Bitcoin ATR Trading System 🚀📈

Stunning 30k Profit Achieved with Bitcoin ATR Trading System 🚀📈

ByByLeo NomistNov 23, 2024605 min read
Jaw-Dropping $6.2 Million Banana Art Purchase Explained 🍌💰

Jaw-Dropping $6.2 Million Banana Art Purchase Explained 🍌💰

ByByOwen PatterNov 23, 2024544 min read
Security Breach in Ledger Connect Kit: Hacker Steals $484K, Company Releases Version 1.1.8